How are passkeys different from two-step verification (2FA)?

While both enhance security, they work differently. Two-step verification (2FA) adds a second factor after you enter your password - typically a code from an authenticator app. Passkeys replace your password entirely and provide multi-factor security in a single step by combining something you have (your device) with something you are (biometric) or know (device PIN). Passkeys are considered more secure because they are: phishing-resistant (they only work on the authentic website), not vulnerable to password database breaches, and cannot be guessed or cracked. If you have both passkeys and 2FA enabled, signing in with a passkey will bypass the 2FA prompt since passkeys already provide equivalent or stronger security.